Skip to content
API-University

API-University

APIs your consumers will love

Menu

  • Books
    • All Books
    • Book Club
    • REST
    • REST & GraphQL
    • GraphQL
    • Serverless GraphQL
    • OAuth
    • OpenID Connect
    • Swagger & OpenAPI
    • Webhooks
    • API Architecture
    • Alexa Voice Skills
  • Courses
    • All Video Courses
    • OAuth – Video Course
    • OpenID Connect – Video Course
    • RESTful API Design – Video Course
    • Digital Business with APIs – Video Course
    • Individual Workshops Classroom or Webinar
    • Practical Video Tutorials …
      • OAuth 2.0 Diagrams
      • OAuth at Facebook
      • OAuth at LinkedIn
      • OAuth at Google
      • OAuth at PayPal
  • Blog
    • API Reviews
    • API Security
    • API Design
    • API Business
    • Open Banking
  • Consulting
    • API Maturity Assessment
    • API Consulting
    • Live Workshops
    • Upskill Your Team
  • Community
    • API Swag (I ❤️ APIs)
    • Find an API Job
    • Become a Partner
  • About
    • Newsletter
    • API-University
    • Matthias
  • Hot Topics
    • API Design Overview
    • API Domain Analysis
    • Architectural and Frontend Design
      • REST
      • GraphQL
    • API Prototyping
    • API Implementation
    • API Tools
    • API Security
      • OAuth
      • OpenID Connect
    • API Publication
    • API Evolution & Versioning

API Security

The relation between OpenID Connect and OAuth 2

The OAuth standard ensures that there is no unintended leakage of information about the resource owner to the client. For example, it is ensured that the client does not get hold of the resource owner’s credentials. The OAuth standard ensures

Matthias Biehl 2015-06-102019-02-11 API Security, Blog Read more

Which Actors are involved in OAuth Flows?

OAuth is designed for distributed systems that consist of several actors with distinct roles. Just like the actors in a movie play specific roles so the story can evolve, each actor in an OAuth flow takes on a specific role

Matthias Biehl 2015-01-192015-06-22 API Security, Blog Read more

OAuth 2.0 Usage

In a previous post, we have introduced OAuth as a framework for API Security. But how is OAuth used and which solutions can be enabled by it? In fact, most of OAuth is happening under the hood of modern cloud, mobile,

Matthias Biehl 2015-01-082020-06-14 API Security, Blog Read more

What is OAuth 2?

If you are working with APIs I am sure you have heard about OAuth 2. It is used for securing access to APIs. OAuth 2 is a standard for delegating authorization for accessing resources via HTTP. OAuth 2 offers a

Matthias Biehl 2015-01-052022-09-15 API Security, Blog Read more

The Password Anti Pattern

People have gotten a bit sensitive about internet security and privacy. “Mobile apps, web-APIs, and Cloud Services – yes, I like and use them, but … is my data really secure there? Can I control what happens to my data

Matthias Biehl 2015-01-022022-09-15 API Security, Blog Read more
  • Next »

Categories

Recent Posts

  • 5 Patterns for API Monetization | How to make money with APIs
  • Open Banking Ecosystems: How they emerge
  • What Open Insurance can learn from Open Banking
  • Open Banking vs Banking-as-a-Service: How do they differ?
  • Guide on API Versioning with a Lifecycle Approach

Tag Cloud

Alexa API API-Review API Design API Portal API Security AppSync AWS Book Design Developer Portal Ecosystem Events google Google API GraphQL Identity Journey Map LinkedIn Linkedin API Live Coding node.js OAuth OpenBanking OpenID Connect OpenInsurance OWASP Pattern REST Review Richardson Security Skill Social Login Social Login with LinkedIn Spotify Spotify API Spotify OAuth Spotify OAuth Access Token subscriptions Testing Tutorial Video Voice Webhooks

API-University Series

The API-University Book Series is a modular series of books on API-related topics. Want them all? Join the API-University Book Club and save some money.

Read more
Copyright © 2024 API-University. All rights reserved. Theme Spacious by ThemeGrill. Powered by: WordPress.